Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9uw4RJBaFn8oIvwQRHSbtgjBBw.roa
File: I9uw4RJBaFn8oIvwQRHSbtgjBBw.roa (raw, json)
Hash identifier: o3zKOyzX1qmOKA3AvHSoLDDBD0S4ndiA83DlPiIITdU=
Subject key identifier: 23:DB:B0:E1:12:41:68:59:FC:A0:8B:F0:41:11:D2:6E:D8:23:04:1C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C9F
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9uw4RJBaFn8oIvwQRHSbtgjBBw.roa
Signing time: Wed 29 Sep 2021 02:50:03 +0000
ROA not before: Wed 29 Sep 2021 02:50:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131634
IP address blocks: 124.108.150.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3231 (0xc9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=23DBB0E112416859FCA08BF04111D26ED823041C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:db:9f:7c:da:e4:6b:e8:ee:14:85:24:6c:99:
c5:a9:d8:48:25:23:2a:ed:43:84:68:e1:38:5a:4f:
4e:a2:a5:6a:24:6c:54:a7:93:46:d5:37:01:49:72:
a9:24:5a:aa:fb:24:f1:7b:aa:05:0d:02:01:08:f3:
08:55:da:f1:fe:a0:a1:c5:2a:2a:1c:21:9e:32:46:
5b:c6:6c:8b:06:aa:12:fc:d9:89:94:3b:a6:0c:83:
94:3a:22:5d:ae:40:ba:0f:9a:1e:1b:f6:5b:90:fd:
86:f1:77:da:a2:e9:ae:0c:87:b6:77:35:ea:ad:d4:
2f:f9:92:4d:50:1c:e2:f1:b2:78:3f:69:a7:8a:f7:
35:a1:8b:20:1d:4b:f7:61:8c:95:5b:97:3e:ff:f5:
f4:46:41:86:db:75:97:33:95:1a:f5:a9:b6:14:b9:
0f:39:6e:8f:fc:86:88:da:4b:1e:0e:01:b7:38:69:
66:c3:62:2c:35:4a:6e:55:50:d7:d2:c7:8a:f4:6e:
fb:84:d5:21:99:11:f0:0d:aa:d0:53:88:ee:cc:b3:
6b:1d:75:33:7b:e6:42:49:7c:29:49:c4:4c:dd:19:
87:ba:29:7d:4b:ee:a3:8c:93:14:e6:87:43:fb:a2:
f9:7b:16:93:b4:9b:59:da:44:59:cb:34:bb:5d:a3:
69:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DB:B0:E1:12:41:68:59:FC:A0:8B:F0:41:11:D2:6E:D8:23:04:1C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9uw4RJBaFn8oIvwQRHSbtgjBBw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.150.0/23
Signature Algorithm: sha256WithRSAEncryption
03:a1:72:93:7f:cb:99:29:f7:bc:9c:c8:36:3c:71:d3:b7:2b:
52:ec:0e:d5:a1:29:44:67:cf:73:c0:4f:b8:b9:e8:85:d0:e9:
75:e5:c8:3e:6d:40:96:3c:a6:19:f0:70:bf:bf:ed:80:25:67:
ba:86:bd:e0:b6:23:f2:c4:82:ce:2f:dc:dd:69:07:bc:bf:3d:
aa:64:0a:29:ab:61:ca:f2:94:c8:cb:04:83:b0:89:ff:38:75:
6d:bd:ca:12:9f:5e:b6:2c:8a:cf:aa:40:5b:bd:52:12:fd:fe:
f4:b7:a7:5c:75:c2:f4:a4:1b:73:62:80:ce:0e:c7:e8:cc:35:
6b:68:9b:32:29:37:cd:1b:db:41:40:1e:16:7d:0f:72:c7:4d:
7c:ba:8f:d2:9c:e7:36:5a:cc:0a:b6:82:cd:0b:17:0d:bd:e7:
0a:9b:15:65:35:71:b9:75:53:b1:12:00:8b:32:3d:f3:97:22:
7e:d1:c7:b9:13:40:3f:b8:81:dc:d6:01:64:77:a0:d0:a1:44:
66:0c:27:3b:2c:6b:cc:73:5f:5d:f8:1e:d5:c9:84:b3:04:7a:
64:73:d7:a4:3c:66:3d:25:fd:0b:07:4b:19:87:1b:0a:eb:d9:
29:4d:ad:cc:64:03:2d:a0:0b:c5:e2:bf:0d:1e:70:c5:b5:e9:
a5:48:20:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org